Slashdot Mirror

← Back to Stories (view on slashdot.org)

Apple Safari On Windows Broken On First Day

Posted by kdawson on from the bigger-they-come dept.

An anonymous reader writes "David Maynor, infamous for the Apple Wi-Fi hack, has discovered bugs in the Windows version of Safari mere hours after it was released. He notes in the blog that his company does not report vulnerabilities to Apple. His claimed catch for 'an afternoon of idle futzing': 4 DoS bugs and 2 remote execution vulnerabilities." Separately, within 2 hours Thor Larholm found a URL protocol handler command injection vulnerability that allows remote command execution.

4 of 595 comments (clear)

  1. Re:He notes in the blog that his company does not by Whiney+Mac+Fanboy · · Score: 0, Flamebait

    because he is a total fsckwad loser attention hound.

    I wondered who'd be the first to launch an ad hominem attack - and look, right in the first comment.

    Thanks for reaffirming my faith in Apple Fanboi nature.

    --
    There are shills on slashdot. Apparently, I'm one of them.
  2. Re:Maybe that's because... by DogDude · · Score: 0, Flamebait

    A software beta means that the developers are reasonably sure that it's ready for the public to use. They're relatively sure they've gotten out all of the bugs found in Development and Alpha testing. Beta isn't supposed to find major crashes. It's designed to find the smaller bugs that the testing team overlooked, and tweak the user experience.

    Apple does not release decent Windows software. Case in point: iTunes is a terrible mess. I'm not surprised Safari Beta is this bad.

    --
    I don't respond to AC's.
  3. Re:shooting the messenger is now + 5 insightful? by siddesu · · Score: 0, Flamebait

    correctamundo.
    so then it is better that people don't know what's in for them when installing it, right?
    or you sincerely believe most folks that install stuff know what they are doing?

  4. Re:He notes in the blog that his company does not by phantomfive · · Score: 0, Flamebait

    This might be believable, except this is the guy who came up with the bogus apple wireless exploit a while back. They reported it to Apple, but it wasn't really a problem because it was with a third-party wireless device, in a setup that would probably never happen in real life (and likely was never actually a vulnerability in the first place). Furthermore, if you are willing to pay for their Hacker Eye View program penetration testing, they WILL give you a full report of the vulnerability. After a careful analysis of the situation, it seems that the 'security expert' is actually a marketoid looking to drum up some free publicity for his company.

    --
    Qxe4